Actions
- Install access controls for cloud and on-premises systems to reduce your organization’s attack surface
- Put in place proper network segmentation between trusted and untrusted devices and zones
- Roll out tools that generate alerts on suspicious activities and anomalies based on visibility into:
- User
- Network
- System activities
Risk factors
Harden your systems and networks to limit access. Use the principle least privilege to reduce malicious attacks.
Use geo-blocking for cloud and on-premises systems. This restricts connectivity to your organization’s resources from authorized locations only. Leverage threat feeds to automatically block known malicious domains and IP addresses.
Be very selective when opening ports and services. Do this as needed for systems and applications to function.
Exercise caution when configuring public-facing systems. Segment your networks to restrict access based on security requirements. Take extra care to segment these categories:
- Internet of Things (IoT) devices
- Building management systems
- Guest Wi-Fi networks
Use the concept of least privilege when assigning permissions to devices and network resources.
Monitor your systems and networks for signs of suspicious activity. An example is concurrent connections from the same employee from several devices or locations.
Related
-
Cybersecurity
Learn about how we’re keeping the County network secure and how you can protect yourself and your business safe too.
-
Cybersecurity newsletter
Read and subscribe to our monthly newsletter, Marin CyberSafe News.
-
Top cybersecurity tips for organizations
Learn how to protect your business or organization from cyberattacks. These cybersecurity tips will help you protect your organization’s information.